/

UncategorizedVibe Coding Security369 lines

Authentication and Authorization Patterns

Quick Summary3 lines

AI-generated auth code is the most dangerous code in your application. It produces JWTs with no expiry, stores tokens in localStorage (XSS-accessible), skips CSRF protection, and implements role checks that can be bypassed by changing a URL parameter. Auth is the one area where "it works" means absolutely nothing if it's not also correct.

skilldb get vibe-coding-security-skills/authentication-authorization-patternsFull skill: 369 lines

Install this skill directly: skilldb add vibe-coding-security-skills

Get CLI access →

Related Skills

AI-Specific Vulnerabilities

Vibe Coding Security•378L

Container and Deployment Security

Vibe Coding Security•420L

Credential Management

Vibe Coding Security•391L

Database Security Hardening

Vibe Coding Security•323L

Dependency Supply Chain Security

Vibe Coding Security•362L

Error Handling and Information Leakage

Vibe Coding Security•391L